[v2,0/2] tpm: Resolve potential blocking-forever issue

Message ID	20241016133450.1071197-1-stefanb@linux.ibm.com (mailing list archive)
Headers	show Return-Path: <qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org> From: Stefan Berger <stefanb@linux.ibm.com> To: qemu-devel@nongnu.org Cc: berrange@redhat.com, marcandre.lureau@gmail.com, Stefan Berger <stefanb@linux.ibm.com> Subject: [PATCH v2 0/2] tpm: Resolve potential blocking-forever issue Date: Wed, 16 Oct 2024 09:34:48 -0400 Message-ID: <20241016133450.1071197-1-stefanb@linux.ibm.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Received-SPF: pass client-ip=148.163.156.1; envelope-from=stefanb@linux.ibm.com; helo=mx0a-001b2d01.pphosted.com X-Spam_score_int: -26 X-Spam_score: -2.7 X-Spam_bar: -- X-Spam_report: (-2.7 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action Precedence: list Errors-To: qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org Sender: qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org
Series	tpm: Resolve potential blocking-forever issue \| expand [v2,0/2] tpm: Resolve potential blocking-forever issue [v2,1/2] tpm: Use new ptm_cap_n structure for PTM_GET_CAPABILITY [v2,2/2] tpm_emulator: Read control channel response in 2 passes

Message ID

20241016133450.1071197-1-stefanb@linux.ibm.com (mailing list archive)

Headers

From: Stefan Berger <stefanb@linux.ibm.com>
To: qemu-devel@nongnu.org
Cc: berrange@redhat.com, marcandre.lureau@gmail.com,
 Stefan Berger <stefanb@linux.ibm.com>
Subject: [PATCH v2 0/2] tpm: Resolve potential blocking-forever issue
Date: Wed, 16 Oct 2024 09:34:48 -0400
Message-ID: <20241016133450.1071197-1-stefanb@linux.ibm.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Received-SPF: pass client-ip=148.163.156.1;
 envelope-from=stefanb@linux.ibm.com;
 helo=mx0a-001b2d01.pphosted.com
X-Spam_score_int: -26
X-Spam_score: -2.7
X-Spam_bar: --
X-Spam_report: (-2.7 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7,
 RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001,
 RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001,
 SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: qemu-devel@nongnu.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <https://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=subscribe>
Errors-To: qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org
Sender: qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org

Series

tpm: Resolve potential blocking-forever issue | expand

Message

Stefan Berger Oct. 16, 2024, 1:34 p.m. UTC

In case swtpm was to return a control channel message with an error code it
would only return 4 bytes. However, some of the commands expect a response
with more bytes and QEMU would get stuck in qemu_chr_fe_read_all() waiting
for bytes following the error code. Therefore, read the response in 2
passes stopping if an error code is received in the first 4 bytes to avoid
getting stuck. Implement an exception for CMD_GET_STATEBLOB that has always
been sending the header in case of error.

   Stefan

v2:
  - 


Stefan Berger (2):
  tpm: Use new ptm_cap_n structure for PTM_GET_CAPABILITY
  tpm_emulator: Read control channel response in 2 passes

 backends/tpm/tpm_emulator.c | 45 ++++++++++++++++++++++++++++++-------
 backends/tpm/tpm_ioctl.h    | 13 ++++++++++-
 backends/tpm/trace-events   |  2 +-
 3 files changed, 50 insertions(+), 10 deletions(-)

Comments

Stefan Berger Oct. 16, 2024, 2:31 p.m. UTC | #1

On 10/16/24 9:34 AM, Stefan Berger wrote:
> In case swtpm was to return a control channel message with an error code it
> would only return 4 bytes. However, some of the commands expect a response
> with more bytes and QEMU would get stuck in qemu_chr_fe_read_all() waiting
> for bytes following the error code. Therefore, read the response in 2
> passes stopping if an error code is received in the first 4 bytes to avoid
> getting stuck. Implement an exception for CMD_GET_STATEBLOB that has always
> been sending the header in case of error.
> 
>     Stefan
> 
> v2:
>    -

Please disregard v2. v3 coming shortly.
> 
> 
> Stefan Berger (2):
>    tpm: Use new ptm_cap_n structure for PTM_GET_CAPABILITY
>    tpm_emulator: Read control channel response in 2 passes
> 
>   backends/tpm/tpm_emulator.c | 45 ++++++++++++++++++++++++++++++-------
>   backends/tpm/tpm_ioctl.h    | 13 ++++++++++-
>   backends/tpm/trace-events   |  2 +-
>   3 files changed, 50 insertions(+), 10 deletions(-)
>